$ rpki-client -vvf rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft File: rdsr88QYJtbQ--jSvy8FLZil2Uk.mft (raw, json) Hash identifier: sSCxb/JxlGe9MSeyr0huCTjOeaGvKtG0ulOwKf1bBAQ= Subject key identifier: 7B:5A:B0:EC:6C:BE:18:71:48:B6:CA:0F:73:C3:D7:69:99:21:26:1E Authority key identifier: AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 Certificate issuer: /CN=A91689C8/serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft Manifest number: 0204 Signing time: Tue 01 Jul 2025 03:14:30 +0000 Manifest this update: Tue 01 Jul 2025 03:14:29 +0000 Manifest next update: Tue 08 Jul 2025 03:14:29 +0000 Files and hashes: 1: rdsr88QYJtbQ--jSvy8FLZil2Uk.crl (hash: KXq13J+tHCzJi4B1DKWZteug/3M3Gu0gLG1jMVHWh6U=) 2: 3BB70A86092211F08BA72686C4F9AE02.roa (hash: 2J/4S4P7iHBoNIa8ALxa/H8YBNXVUqoF1W5QLX0G6vs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689C8, serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Validity Not Before: Jul 1 03:14:29 2025 GMT Not After : Jul 8 03:14:29 2025 GMT Subject: CN=68635296-d130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:16:31:6b:80:5e:3b:a4:4f:d2:7d:c3:14:2c: d9:3e:4a:fb:7b:c0:64:5b:ed:c6:03:fe:65:85:e0: 3e:08:54:1f:de:f5:4c:c0:c5:ba:06:38:e7:00:e9: 84:48:b3:8e:32:64:39:7c:3e:c2:25:4a:ef:55:21: d3:31:f7:71:0e:2b:65:ea:fd:07:b2:91:15:c1:15: 66:fc:3f:e5:f1:8d:47:73:68:39:bd:5a:78:9c:41: c3:0a:46:93:2e:0f:44:8e:26:1d:7f:cf:5a:2a:4f: 38:24:e8:7b:06:1d:59:c2:4c:0d:df:12:7a:bd:5b: ec:a9:e9:d2:b5:bd:11:59:53:cd:31:d3:29:2e:d1: a4:ed:98:c0:0f:dd:50:33:71:11:2a:dd:21:57:fd: 50:4d:b8:4f:93:06:fd:ea:4f:1d:a9:c0:e7:4b:85: 46:6e:b4:9e:a6:49:c3:c4:6b:3f:cb:b6:1f:d4:b6: 8f:6a:c1:dc:48:77:b7:e9:b0:db:32:d5:b9:3c:ec: 27:57:cc:b8:60:eb:93:3e:c9:5f:27:c0:14:e1:4a: e9:5a:c1:b9:2a:c3:7d:b4:29:8d:57:eb:c7:42:0e: 95:0b:39:2d:ea:11:55:0a:b3:cd:84:23:1c:d5:27: 29:d7:95:8f:11:22:94:2f:0b:ec:fa:de:a2:08:64: f6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:5A:B0:EC:6C:BE:18:71:48:B6:CA:0F:73:C3:D7:69:99:21:26:1E X509v3 Authority Key Identifier: keyid:AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:3d:f1:f8:23:36:81:66:56:eb:6b:c6:9d:7d:b0:c2:3a:0a: 01:46:67:31:f0:3e:71:6c:c9:6f:20:03:dc:ec:10:68:6c:9d: 89:06:61:6a:32:46:f2:ea:61:aa:b4:0b:6d:73:2a:73:ca:bd: e0:12:c9:9c:2e:09:48:f3:a8:98:c8:c4:f9:5d:d9:f9:ec:58: 10:48:92:f1:9b:03:c9:8f:6c:ee:dc:09:1f:ee:f2:66:51:df: b9:2e:8c:45:54:e6:e5:d5:c8:df:9b:8f:c8:fa:8c:28:43:9c: 62:0f:e9:16:4a:96:03:9f:66:d0:7c:83:79:b6:d7:a5:6d:08: 41:1d:ed:39:85:99:fd:77:20:e5:19:ed:be:4c:ea:ca:6b:a4: 5d:93:67:e2:f4:11:14:3a:92:91:ac:21:9f:35:8c:c9:e4:47: 84:03:b3:29:6c:2b:a6:0a:29:ff:0e:0e:0a:b0:5a:70:18:0f: 1c:40:d8:0e:cf:07:de:40:d5:76:e8:3f:f4:94:ec:ec:25:b4: f5:2f:d3:fa:2e:17:b1:e5:46:33:cd:f1:95:9b:2f:d7:b4:8c: d6:a1:d9:44:66:ee:5b:28:b3:9d:2b:a1:d4:6c:7a:0a:04:6e: f9:51:c3:f9:d5:88:9c:52:db:1b:a7:4f:47:7c:5e:5e:3b:c8: 2a:4e:4f:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODlDODExMC8GA1UEBRMoQUREQjJCRjNDNDE4MjZENkQwRkJFOEQyQkYyRjA1MkQ5 OEE1RDk0OTAeFw0yNTA3MDEwMzE0MjlaFw0yNTA3MDgwMzE0MjlaMBgxFjAUBgNV BAMTDTY4NjM1Mjk2LWQxMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyFjFrgF47pE/SfcMULNk+Svt7wGRb7cYD/mWF4D4IVB/e9UzAxboGOOcA6YRI s44yZDl8PsIlSu9VIdMx93EOK2Xq/QeykRXBFWb8P+XxjUdzaDm9WnicQcMKRpMu D0SOJh1/z1oqTzgk6HsGHVnCTA3fEnq9W+yp6dK1vRFZU80x0yku0aTtmMAP3VAz cREq3SFX/VBNuE+TBv3qTx2pwOdLhUZutJ6mScPEaz/Lth/Uto9qwdxId7fpsNsy 1bk87CdXzLhg65M+yV8nwBThSulawbkqw320KY1X68dCDpULOS3qEVUKs82EIxzV JynXlY8RIpQvC+z63qIIZPYbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe1qw7Gy+ GHFItsoPc8PXaZkhJh4wHwYDVR0jBBgwFoAUrdsr88QYJtbQ++jSvy8FLZil2Ukw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4OUM4LzM4QjM4RTVFOERE NzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRiUS0talN2eThGTFppbDJV ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmRzcjg4UVlKdGJRLS1qU3Z5OEZMWmlsMlVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4 OUM4LzM4QjM4RTVFOERENzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRi US0talN2eThGTFppbDJVay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAE98fgjNoFmVutrxp19sMI6CgFGZzHwPnFsyW8gA9zsEGhsnYkGYWoy RvLqYaq0C21zKnPKveASyZwuCUjzqJjIxPld2fnsWBBIkvGbA8mPbO7cCR/u8mZR 37kujEVU5uXVyN+bj8j6jChDnGIP6RZKlgOfZtB8g3m216VtCEEd7TmFmf13IOUZ 7b5M6sprpF2TZ+L0ERQ6kpGsIZ81jMnkR4QDsylsK6YKKf8ODgqwWnAYDxxA2A7P B95A1XboP/SU7OwltPUv0/ouF7HlRjPN8ZWbL9e0jNah2URm7lsos50rodRsegoE bvlRw/nViJxS2xunT0d8Xl47yCpOTzY= -----END CERTIFICATE-----Generated at Tue Jul 1 15:58:43 2025 by rpki-client